Mayor’s Gym

Mayors ry / Mayor’s Gym – EU General Data Protection Regulation (GDPR) as of May 25, 2018

DATA PROTECTION PRINCIPLES
Mayors ry / Mayor’s Gym (hereafter “Mayor’s Gym”) complies with the EU General Data Protection Regulation (GDPR), effective from May 25, 2018. We take all reasonable measures to ensure that your personal data is processed securely and in accordance with our data protection principles. The legal basis for processing is either your consent or a contract. When we start processing your personal data, we will always inform you of the legal basis. Mayor’s Gym maintains data registries and privacy statements in line with GDPR recommendations.

Collection, Use, and Consent
Mayor’s Gym maintains a customer database to support its operations in accordance with association rules and current GDPR standards. Customer information is collected from the data provided by the customer and is not shared with external parties.

We collect and process personal data for the management of customer relationships and to provide information about our products and services. Marketing use of personal data is based on the consent you provide.

If a customer is also a member of the association, membership data is used for activities in accordance with Mayors ry rules. The customer registry is managed by Confirma.

By joining as a member or customer, you consent to the use of your personal data for purposes related to the association’s activities. When visiting the gym, we record your visits. Customers can also make card top-ups and purchases via our online store. Using these services requires processing personal data, as you must log in with your email and password. Customers may update or delete their personal data online and may request deletion in writing if needed.

Contents of the Registry
Mayors ry uses personal data to:

  • Manage purchases made online and at the gym reception
  • Send notifications regarding association activities
  • Handle complaints related to products and services
  • Manage access control and ensure compliance with gym rules
  • Detect and prevent misuse of services
  • Investigate safety concerns using video surveillance and visit logs, and report criminal activity if necessary

Types of Personal Data Processed

  • Contact information: name, address, email, phone number
  • Payment information and history
  • Order information and history
  • Access control data

Sharing Personal Data
Mayors ry does not share your data outside the EU/EEA. Personal data is confidential and accessible only to authorized personnel who require it for their work. Authorized third parties include service administrators, developers, and payment providers.

Access and Rights to Personal Data
Under applicable law, members and customers have the right to access their personal data once per year free of charge. Personal data can also be checked online at any time.

Members/customers have the right to:

  • Know how their data is processed
  • Access their personal data
  • Request corrections to their data
  • Object to the processing of their data

The data controller is responsible for:

  • Answering questions about personal data
  • Providing requested data
  • Making corrections requested by the customer
  • Storing accurate data in the registry

Requests should be submitted in writing to: hallitus@mayors.fi. Requests will be processed within one month unless legally obligated to act otherwise.

Data Storage, Security, and Disposal
Member and customer data is stored in an electronic registry protected by Enkora.

  • IT connections are secured by the service provider
  • Physical archive material is stored in a locked archive room and safe
  • Paper materials are destroyed using a cross-cut shredder